Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/2f6652-7466-4a16-83da-c1f1a0e497cc/1/KUJPgsfIL8VJlTLlpmUadPYpxao.mft
File: KUJPgsfIL8VJlTLlpmUadPYpxao.mft (raw, json)
Hash identifier: oDg3izwCs1ijMQgNeNSwt1VQoRULEEDkphPonbyX7Gw=
Subject key identifier: DE:5B:9E:F7:AC:E6:8D:B4:B4:C4:65:AB:10:90:A0:FC:76:11:5B:4D
Authority key identifier: 29:42:4F:82:C7:C8:2F:C5:49:95:32:E5:A6:65:1A:74:F6:29:C5:AA
Certificate issuer: /CN=29424f82c7c82fc5499532e5a6651a74f629c5aa
Certificate serial: 0196B1EB0183E33CA1EB48148F0B9A29EC5C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KUJPgsfIL8VJlTLlpmUadPYpxao.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/2f6652-7466-4a16-83da-c1f1a0e497cc/1/KUJPgsfIL8VJlTLlpmUadPYpxao.mft
Manifest number: 0907
Signing time: Thu 08 May 2025 22:01:30 +0000
Manifest this update: Thu 08 May 2025 22:01:30 +0000
Manifest next update: Fri 09 May 2025 22:01:30 +0000
Files and hashes: 1: E7pOFVTH8vD5FpCiYaR8AAvSF9c.roa (hash: QknCCRzW2QumFMETOVNE4NTQsXWLabVtKWWfI6cIov4=)
2: KUJPgsfIL8VJlTLlpmUadPYpxao.crl (hash: 1JbvXStGYGCwyd6fK6Rm9oITzZebf6rtIioqPzZDTI4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/80/2f6652-7466-4a16-83da-c1f1a0e497cc/1/KUJPgsfIL8VJlTLlpmUadPYpxao.crl
rsync://rpki.ripe.net/repository/DEFAULT/80/2f6652-7466-4a16-83da-c1f1a0e497cc/1/KUJPgsfIL8VJlTLlpmUadPYpxao.mft
rsync://rpki.ripe.net/repository/DEFAULT/KUJPgsfIL8VJlTLlpmUadPYpxao.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 09 May 2025 16:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:b1:eb:01:83:e3:3c:a1:eb:48:14:8f:0b:9a:29:ec:5c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=29424f82c7c82fc5499532e5a6651a74f629c5aa
Validity
Not Before: May 8 22:01:30 2025 GMT
Not After : May 9 22:01:30 2025 GMT
Subject: CN=de5b9ef7ace68db4b4c465ab1090a0fc76115b4d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:3c:5a:d0:12:9f:02:48:8b:00:f4:50:ad:ef:
8e:34:4d:4c:4c:f1:3c:56:95:47:1c:2f:b8:da:3b:
c6:ad:20:0b:71:d9:76:b2:af:01:11:ff:e6:49:7d:
fd:ec:42:d9:7d:bf:b7:e1:22:ec:37:6e:61:40:12:
21:b2:a0:2b:d6:ba:49:47:4f:30:1e:dd:69:e1:09:
14:37:63:a8:b1:67:0d:46:8b:58:06:8d:dd:ef:a3:
ed:d6:56:90:b0:f3:a4:31:d1:32:3e:24:91:83:5e:
59:50:d6:37:71:44:26:31:0e:6f:db:36:d7:53:51:
ab:d6:4a:1c:9d:bd:46:1c:41:74:94:70:0e:cb:6d:
fe:75:f6:7e:51:31:06:97:dc:a1:eb:b5:0c:83:4c:
55:76:16:f2:77:08:27:1a:14:85:59:eb:24:9f:1f:
b0:b3:9f:ad:a9:bd:ed:6b:89:5b:bd:bf:ca:6e:64:
9e:a4:17:d5:ed:77:2c:00:5b:6e:5c:98:22:fc:78:
4c:ed:f9:a7:76:d7:7e:d1:db:b6:6b:4b:87:39:16:
ac:92:8b:9e:62:37:0d:59:6b:d0:33:06:4e:2e:19:
32:70:cc:6a:c8:06:d1:3a:66:15:46:90:8c:a1:24:
cc:73:b7:e2:8c:d4:ed:b9:52:84:aa:91:77:d5:49:
ff:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:5B:9E:F7:AC:E6:8D:B4:B4:C4:65:AB:10:90:A0:FC:76:11:5B:4D
X509v3 Authority Key Identifier:
keyid:29:42:4F:82:C7:C8:2F:C5:49:95:32:E5:A6:65:1A:74:F6:29:C5:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KUJPgsfIL8VJlTLlpmUadPYpxao.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/2f6652-7466-4a16-83da-c1f1a0e497cc/1/KUJPgsfIL8VJlTLlpmUadPYpxao.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/80/2f6652-7466-4a16-83da-c1f1a0e497cc/1/KUJPgsfIL8VJlTLlpmUadPYpxao.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
89:a9:1a:b4:f1:83:98:e6:3d:32:cb:58:ed:ea:95:4b:09:ba:
44:41:66:b6:00:fc:a2:f0:11:66:60:04:75:8a:4c:cc:05:d4:
0b:30:72:cc:b4:39:22:41:27:14:f5:22:04:e3:c7:c3:40:2e:
60:32:8d:74:f9:56:2d:bf:bc:32:85:f7:a8:a6:1b:f1:e6:4e:
b3:8e:3e:c4:81:3b:b1:f5:5c:48:ef:e8:de:d3:fe:eb:20:d4:
10:e1:df:23:23:d7:c5:85:48:2f:47:6a:03:01:43:0f:94:4e:
0c:b5:75:95:89:10:1a:02:29:f3:e9:7a:99:17:b6:8f:77:14:
2a:8e:75:d6:91:27:3b:0e:3f:9c:29:22:8f:38:c3:b7:0c:07:
42:c1:a7:4f:4a:44:f3:5d:2c:47:eb:78:00:81:07:d6:b2:80:
35:55:7e:d1:0a:05:86:1a:fc:74:09:23:50:95:70:82:75:e1:
82:92:3a:10:54:1f:3a:65:d7:fe:2e:f9:24:66:59:18:77:cb:
b0:f1:c2:2b:9a:70:9f:f9:08:4a:87:21:1d:69:e5:4d:b7:d7:
ab:e7:fb:2a:e6:87:b3:9c:39:20:f2:70:7b:a0:1f:88:a9:d9:
af:3b:9e:83:b4:53:14:78:be:d8:6d:68:22:e7:39:b0:7d:9d:
ae:d4:1f:ee
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZax6wGD4zyh60gUjwuaKexcMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDI5NDI0ZjgyYzdjODJmYzU0OTk1MzJlNWE2NjUxYTc0ZjYy
OWM1YWEwHhcNMjUwNTA4MjIwMTMwWhcNMjUwNTA5MjIwMTMwWjAzMTEwLwYDVQQD
EyhkZTViOWVmN2FjZTY4ZGI0YjRjNDY1YWIxMDkwYTBmYzc2MTE1YjRkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqzxa0BKfAkiLAPRQre+ONE1MTPE8
VpVHHC+42jvGrSALcdl2sq8BEf/mSX397ELZfb+34SLsN25hQBIhsqAr1rpJR08w
Ht1p4QkUN2OosWcNRotYBo3d76Pt1laQsPOkMdEyPiSRg15ZUNY3cUQmMQ5v2zbX
U1Gr1kocnb1GHEF0lHAOy23+dfZ+UTEGl9yh67UMg0xVdhbydwgnGhSFWesknx+w
s5+tqb3ta4lbvb/KbmSepBfV7XcsAFtuXJgi/HhM7fmndtd+0du2a0uHORaskoue
YjcNWWvQMwZOLhkycMxqyAbROmYVRpCMoSTMc7fijNTtuVKEqpF31Un/cwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFN5bnves5o20tMRlqxCQoPx2EVtNMB8GA1UdIwQY
MBaAFClCT4LHyC/FSZUy5aZlGnT2KcWqMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvS1VKUGdzZklMOFZKbFRMbHBtVWFkUFlweGFvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84MC8yZjY2NTItNzQ2Ni00YTE2LTgzZGEt
YzFmMWEwZTQ5N2NjLzEvS1VKUGdzZklMOFZKbFRMbHBtVWFkUFlweGFvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84MC8yZjY2NTItNzQ2Ni00YTE2LTgzZGEtYzFmMWEwZTQ5N2Nj
LzEvS1VKUGdzZklMOFZKbFRMbHBtVWFkUFlweGFvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAiakatPGD
mOY9MstY7eqVSwm6REFmtgD8ovARZmAEdYpMzAXUCzByzLQ5IkEnFPUiBOPHw0Au
YDKNdPlWLb+8MoX3qKYb8eZOs44+xIE7sfVcSO/o3tP+6yDUEOHfIyPXxYVIL0dq
AwFDD5RODLV1lYkQGgIp8+l6mRe2j3cUKo511pEnOw4/nCkijzjDtwwHQsGnT0pE
810sR+t4AIEH1rKANVV+0QoFhhr8dAkjUJVwgnXhgpI6EFQfOmXX/i75JGZZGHfL
sPHCK5pwn/kISochHWnlTbfXq+f7KuaHs5w5IPJwe6AfiKnZrzueg7RTFHi+2G1o
Iuc5sH2drtQf7g==
-----END CERTIFICATE-----
Generated at Fri May 9 02:58:52 2025 by rpki-client